Tiger Unix Security tool updated to 3.2.3

TIGER is a set of Bourne shell scripts, C programs, and data files which are used to perform a security audit of Unix systems. The security audit results are useful both for system analysis (security auditing) and for real-time, host-based intrusion detection.

A new version of Tiger (3.2.3) has been released. This version is mainly a bug fix release that incorporates all the fixes introduced in Debian since the 3.2.2 release.

Changes for this new release

  • SECURITY FIX: Fix a temporary race condition in the genmsgidx script (only
    affects those that build the code in untrusted systems)
  • Added support for more local and non-local filesystems in Linux gen_mounts:
    reiser4, securityfs, fuse.gvfs-fuse-daemon, fuseblk, fuse.truecrypt,
    fuse.encfs, debugfs, afs, configfs, gfs, gfs2, inotifyfs, hugetlb, subfs,
    futexfs and bind.
  • Added a new configuration variable in tigerrc
  • Add new variables in tigerrc
  • Fix the main Makefile so that the code gets compiled when running ’make all’
  • Add a new Makefile to the doc/ subdirectory so that the contents get built and removed and no autogenerated content is distributed. This subdirectory is called from the mainMakefile.
  • Use tempfile if available in the configuration step, although we work in WORKDIR and we are safe there
  • Make tigercron POSIX compliant so it works in any shell, not just bash
  • The ’gen_cron’ script for Linux now handles properly the case when the special @daily,@reboot, etc. definitions are used instead of real times.
  • Scripts changes